Extended access control mechanism for cross-domain data exchange

Rongna XIE; Yunchuan GUO; Fenghua LI; Guozhen SHI; Yaqiong WANG; Kui GENG

Tongxin xuebao (Jul 2019)

Extended access control mechanism for cross-domain data exchange

Rongna XIE,
Yunchuan GUO,
Fenghua LI,
Guozhen SHI,
Yaqiong WANG,
Kui GENG

Affiliations

Rongna XIE
Yunchuan GUO
Fenghua LI
Guozhen SHI
Yaqiong WANG
Kui GENG

Journal volume & issue: Vol. 40
pp. 67 – 76

Abstract

Read online

Aiming at the controlled sharing for cross-domain data exchange for complicated application systems,an extended access control mechanism was proposed.The control process was divided into two steps:constraint control and propagation control.The constraint control was used to ensure that access to data was authorized before access request,and the propagation control was used for further extension control after obtaining data access right.In addition,by considering data self and data provenance,the direct and indirect access control were realized.Theoretically,the security and effectiveness of the proposed mechanism were proved.Finally,taking the control of electronic invoice as an example,the implementation approach was proposed.The example shows that the proposed mechanism can perform the fine-grained extended control before and after data in the cross-domain and cross-system are exchanged.

cross-domain;data flow control;data provenance;extended authorization;propagation control

Published in Tongxin xuebao

ISSN: 1000-436X (Print)
Publisher: Editorial Department of Journal on Communications
Country of publisher: China
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering: Telecommunication
Website: http://www.infocomm-journal.com/txxb/EN/1000-436X/home.shtml

About the journal

Abstract

Keywords